Fujitsu confirms cyberattack, fears possible data breach

The investigation is ongoing

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Fujitsu has reported cyberattack in which it believes sensitive personal and customer information may have been stolen.

In a press release published on Fujitsu’s website (and machine-translated from Japanese), the company said it spottedmalwareon “multiple work computers”, forcing the organization to disconnect the compromised endpoints.

Following an internal investigation, the company discovered that “files containing personal information and customer information could be legally taken out”.

No evidence of misuse

Unfortunately, Fujitsu’s announcement was short and lacked crucial information.TechRadar Prohas reached out with additional questions and will update the article accordingly if we hear back.

So far, the company did not say what files were taken, so there is no indication that they include payment data, phone numbers, social security numbers, or other sensitive information that could be used in identity theft and similar fraudulent activities.

While Fujitsu said that both “personal and customer” information was taken, it is unconfirmed if the files belong to employees (either current, or former), business partners, or someone else entirely. There is also no information on exactly how many people were affected by the breach.

Finally, Fujitsu is yet to reveal if this was a ransomware attack or a simple data grab, or who the perpetrators were. Ransomware groups usually demand payment in exchange for keeping the data private, so it is possible that the attackers are asking for millions in cryptocurrencies.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

What has been confirmed is that Fujitsu reported the incident to the Personal Information Protection Commission (Japanese data watchdog), and that it is investigating if the data popped up anywhere on the (dark) web. So far, there is no evidence of data misuse, the company confirmed.

“We deeply apologize for the great concern and inconvenience this has caused to everyone involved,” the press release concludes.

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

This new malware utilizes a rare programming language to evade traditional detection methods

A new form of macOS malware is being used by devious North Korean hackers

Arcane season 2 confirms the hit series isn’t just one of the best Netflix shows ever made – it’s an animated legend that’ll stand the test of time